UNCLASSIFIED 


Defense  Technical  Information  Center 
Compilation  Part  Notice 

ADPO 12703 

TITLE:  Possible  Conflicts,  ARRs,  and  Conflicts 
DISTRIBUTION:  Approved  for  public  release,  distribution  unlimited 


This  paper  is  part  of  the  following  report: 

TITLE:  Thirteenth  International  Workshop  on  Principles  of  Diagnosis 
[DX-2002] 

To  order  the  complete  compilation  report,  use:  ADA405380 

The  component  part  is  provided  here  to  allow  users  access  to  individually  authored  sections 
of  proceedings,  annals,  symposia,  etc.  However,  the  component  should  be  considered  within 
the  context  of  the  overall  compilation  report  and  not  as  a stand-alone  technical  report. 

The  following  component  part  numbers  comprise  the  compilation  report: 

ADPO 12686  thru  ADPO  1271 1 


UNCLASSIFIED 


Possible  conflicts,  ARRs,  and  conflicts 

Belarmino  Pulido  Junquera  and  Carlos  Alonso  Gonzalez 
Departamento  de  Informatica.  Universidad  de  Valladolid 
Edificio  Tecnologias  de  la  Informacion  y las  Telecomunicaciones 
E-47011.  Valladolid  (Spain)  e-mail:  {belar,calonso}@infor.uva.es 
Phone:  +34  983  42  36  70  Fax:  +34  983  42  36  71 


Abstract.  Consistency-based  diagnosis  is  the  most  widely  used  ap- 
proach to  model-based  diagnosis  within  the  Artificial  Intelligence 
community.  It  is  usually  carried  out  through  an  iterative  cycle  of  be- 
havior prediction,  conflict  detection,  and  candidate  generation  and 
refinement.  Many  approaches  to  consistency-based  diagnosis  have 
relied  on  some  kind  of  on-line  dependency-recording  mechanism  for 
conflict  calculation.  These  techniques  have  had  different  problems, 
specially  when  applied  to  dynamic  systems.  Recently,  off-line  com- 
pilation of  dependencies  has  been  established  as  a suitable  alternative 
approach.  In  this  work  we  compare  one  compilation  technique,  based 
on  the  possible  conflict  concept,  with  results  obtained  with  the  clas- 
sical on-line  dependency  recording  engine  as  in  GDE.  Moreover,  we 
compare  possible  conflicts  with  another  compilation  technique  com- 
ing from  the  FDI  community,  which  is  based  on  analytical  redun- 
dancy relations.  Finally,  we  study  the  relationship  between  possible 
conflicts,  analytical  redundancy  relations,  and  conflicts. 

1 Introduction 

For  more  than  thirty  years  different  techniques  have  been  applied 
to  diagnose  systems  in  multiple  domains.  Diagnosis  has  been  carried 
out  through  knowledge-based  systems,  case-based  reasoning,  model- 
based  reasoning,  and  so  on.  This  work  is  focused  in  the  model-based 
approach  to  diagnosis.  Moreover,  we  will  only  talk  about  diagnosis 
of  physical  devices  [18]. 

More  specifically,  consistency-based  diagnosis  is  the  most  widely 
used  approach  to  model-based  diagnosis  within  the  Artificial  Intelli- 
gence community  (usually  known  as  DX).  It  is  a research  field  that 
has  reported  successful  results  in  recent  years  [39,  7],  This  approach 
has  proven  its  maturity,  both  in  theory,  and  in  practice.  On  the  one 
hand,  the  diagnosis  process  and  the  diagnosis  results  have  been  com- 
pletely characterized  from  a logical  point  of  view  [32,  12],  thus  fa- 
cilitating further  comparison.  On  the  other  hand,  consistency-based 
diagnosis  has  been  successfully  applied  to  a wide  variety  of  domains 
such  as  automotive  industry  [3, 38],  bio-medicine  [20],  nuclear  plants 
[24],  or  ecology  [37]. 

In  such  a framework,  GDE  [13]  is  the  most  well  known  imple- 
mentation, and  de  facto  paradigm.  GDE  organizes  the  diagnosis  pro- 
cess as  an  iterative  cycle  of  behavior  prediction,  conflict  detection, 
and  candidate  generation  and  refinement.  But  conflict  computation 
is  a non-trivial  step,  which  has  deserved  a lot  of  attention  from  the 
consistency-based  diagnosis  community.  In  GDE,  the  set  of  mini- 
mal conflicts  is  computed  by  means  of  an  ATMS  [11],  which  records 
on-line  the  set  of  correctness  assumptions,  or  dependencies,  used  by 
the  inference  engine.  It  should  be  noticed  that  dependency-recording 


can  be  done  forward  (whenever  new  input  data  are  introduced),  or 
backward  (when  a discrepancy  is  found,  such  as  in  CAEN  [2,  21], 
DYNAMIS  [6],  or  TRANSCEND  [25]).  Another  important  feature 
of  the  GDE  framework  is  that  it  calculates  labels  propagating  values 
through  constraints  in  every  possible  direction. 

However,  one  problem  related  to  on-line  dependency-recording  is 
that  the  set  of  labels  needs  to  be  computed  each  time  a new  different 
value  is  introduced.  Another  problem  was  found  in  the  combined  use 
of  on-line  dependency-recording  together  with  qualitative  models  for 
diagnosing  dynamic  systems  [17,  14],  Mainly  for  these  reasons  sev- 
eral research  groups  have  looked  for  alternative  methods  to  such  a 
kind  of  on-line  dependency-recording.  On  the  one  hand  state-based 
diagnosis  [36]  has  emerged  as  an  alternative  to  simulation-based  di- 
agnosis, just  for  qualitative  models.  On  the  other  hand,  topological 
methods  propose  to  explicitly  use  the  structural  description  of  the 
system  to  be  diagnosed.  This  information  is  implicitly  stated  in  the 
system  description.  Within  this  last  approach,  we  make  difference  of 
two  major  trends:  those  methods  that  use  other  on-line  dependency- 
recording  than  ATMS  (by  exploring  causal-graphs  [2,  24],  signed 
directed  graphs  [26],  or  other  topological  and  functional  structures 
[5]).  and  those  methods  that  perform  off-line  dependency-recording. 

Last  techniques  are  also  known  as  compilation  methods  within  the 
DX  community.  The  main  idea  supporting  this  approach  is  that  re- 
dundancy within  the  models  can  be  found  off-line.  A similar  idea 
was  used  in  the  Control  Engineering  community  (or  FDI),  where 
Staroswiecki  and  Declcrk  proposed  to  use  Analytical  Redundancy 
Relations  (ARRs  for  short),  for  fault  detection  and  localization  [34], 
Given  such  a similarity,  there  is  an  ongoing  interest  from  the  DX  and 
the  FDI  communities  in  comparing  their  approaches. 

Between  the  FDI  and  AI  proposals,  Lunze  and  Schiller  [23]  were 
able  to  perform  diagnosis  using  causal  graphs  associated  with  over- 
constrained systems.  These  systems  were  obtained  from  the  logical 
formula  in  the  models  of  the  system. 

Within  the  DX  community  we  have  found  the  following  compila- 
tion techniques: 

• Darwiche  and  Provan  [ 1 0]  characterized  the  set  of  diagnoses  using 
the  consequence  concept  [9],  instead  of  using  the  conflict  concept. 
Analyzing  the  system  structure,  those  sub-systems  which  could 
lead  to  a diagnosis  can  be  found  off-line. 

• Similar  information  is  used  by  Steele  and  Leitch  [35]  to  refine  the 
set  of  candidates,  in  an  adaptive  approach  to  diagnosis  [4], 

• In  DOGS,  Loiez  and  Taillibert  [22]  proposed  to  localize,  off-line, 
over-constrained  sets  of  equations.  They  were  looking  for  those 
sub-systems  capable  to  become  conflicts.  The  work  done  is  con- 


ceptuaily  equivalent  to  that  in  [34],  as  it  has  been  stated  in  [8]. 

• Frohlich  andNejdl  [15]  used  structural  information  two-fold:  they 
analyzed  the  whole  set  of  logical  formula  in  the  model  to  find  sub- 
sets of  formula  capable  to  generate  diagnosis,  and  they  benefit 
from  these  sub-sets  in  order  to  refine  the  whole  set  of  diagnosis 
candidates. 

• Pulido  and  Alonso  [27,  28]  proposed  to  organize  consistency- 
based  diagnosis  around  the  possible  conflict  concept.  A possible 
conflict  is  a sub-system  in  system  description  which  is  capable  to 
become  a conflict,  within  the  GDE  framework. 

In  this  work  we  revisit  the  compilation  technique  based  on  the  pos- 
sible conflict  concept  [27,  28].  Initially  we  summarize  the  character- 
ization of  that  concept,  in  order  to  compare  possible  conflicts  against 
real  conflicts.  Later  on,  we  establish  the  relationship  between  pos- 
sible conflicts  and  ARRs.  Finally,  we  revisit  the  work  by  Cordier  et 
al.  [8]  in  order  to  compare  conflicts  and  ARRs  from  a computational 
point  of  view. 

Due  to  space  limitations  we  do  not  compare  possible  conflicts  and 
other  compilation  techniques  from  the  DX  community.  Such  a com- 
parison can  be  found  in  [28,  30], 


2 The  possible  conflict  concept 

Main  assumptions  in  this  work  arc  that  there  is  no  structural  fault, 
and  it  is  possible  to  know  beforehand  the  number  and  placement  of 
available  observations  (sensors).  An  additional  assumption  is  that  the 
model  of  the  system  can  be  expressed  as  a set  of  constraints:  quanti- 
tative or  qualitative,  linear  or  not,  algebraic  or  not. 

In  Reiter’s  framework  for  model-based  diagnosis  [32]  a minimal 
conflict  identifies  a set  of  constraints  containing  enough  redundancy 
to  perform  diagnosis.  In  the  most  simple  case,  when  constraints  arc 
made  up  of  equations,  a minimal  conflict  would  denote  a strictly 
over-determined  system1 . 

As  it  was  mentioned  in  the  previous  Section,  shared  basis  in  com- 
pilation techniques  is:  the  set  of  analytically  redundant  sub-systems, 
which  can  be  used  for  diagnosis  purposes,  can  be  computed  off-line. 
Moreover,  it  has  been  proven  that  GDE  provides  all  the  existing 
minimal  conflicts.  Since  the  set  of  possible  conflicts  tries  to  be  a 
computational  alternative  to  on-line  dependency  recording  for  con- 
flict computation,  we  have  imposed  an  additional  requirement:  over- 
constrained sub-systems  should  be  the  same  as  the  set  of  minimal 
conflicts  computed  by  GDE  2 . 

Finding  analytical  redundancy  is  a necessary  but  not  a sufficient 
condition  for  a system  to  be  suitable  for  consistency-based  diagnosis 
purposes.  The  system  must  also  be  solved  using  local  propagation 
alone3 . To  fulfill  both  requirements  we  have  split  the  search  process 
into  two  phases.  First,  we  look  for  over-detennined  systems.  Second, 
we  check  whether  these  systems  can  be  solved  using  local  propaga- 
tion alone.  To  do  so,  we  just  need  abstractions  of  model-description. 
For  the  sake  of  readability,  below  we  include  a summary  of  defini- 
tions the  reader  can  find  in  [27,  28], 


1 In  an  over-determined  system  the  number  of  equations,  e,  is  greater  than  the 
number  of  unknowns,  u:  e > u + 1.  In  a strictly  over-determined  system, 

e = u + 1. 

2 For  this  reason,  we  always  assume  that  we  have  the  same  model  (system 
description  or  SD  in  Reiter’s  terminology)  as  GDE  has. 

2 C urrent  consistency-based  diagnosis  systems  do  not  impose  that  constraint 
[19],  In  [30]  we  extended  the  possible  conflict  concept  to  deal  with  such 
(cyclical)  configurations. 


2.1  Searching  for  over-determined  systems 

Wc  have  represented  the  model  in  SD  as  a hyper-graph:  Hsd  = 
{V,  R}  which  is  made  up  of: 

• V = {vi,V2, ...,»»},  the  set  of  variables  in  the  model.  It  is  made 
up  of  observed  OBS,  and  not  observed  or  unknown  variables, 
NOBS:  V = OBS\J  NOBS. 

• R — { f"i , ra  j • • • , I'm  } is  a family  of  sub-sets  in  V , where  each  r*, 
represents  a constraint  in  the  model,  and  it  contains  some  model 
variables,  observed  and  not  observed  ones. 

We  have  called  Evaluation  Chains  the  over-constrained  sub- 
systems in  Hsd  (in  Appendix  A the  reader  can  find  definitions  for 
terminology  in  graphs  and  hyper-graphs  c.f.  [16,  1]): 

Evaluation  chain:  Hec  C Hsd  is  a partial  sub-hypergraph  in 
Hsd’-  Hec  = {Vec,  Rec},  where  Vec  C V,  Rec  C R,  and 
Xec  = Vec  fl  NOBS  is  the  set  of  unknowns  in  Vec,  and  Hec 
verifies: 

1 . Hec  is  a connected  hypergraph, 

2.  Vec  n OBS  flit), 

3.  Vl'no  £ Xec  -F  dli  ,r  ( C no ) dl  2, 

4.  let  G{Hec)  be  a bipartite  graph  made  up  of  two  kinds  of  nodes: 
x £ Xec , and  r»ec  £ Rec,  such  that  two  nodes  are  linked  in 
G(Hec)  if  and  only  if  a:  £ ril!C . Then,  G(Hec)  has  a matching 
with  maximal  cardinality  m!  = \Xec\  and  \ Rec\  > m!  + 1. 

Figure  1 shows  a classical  example  in  consistency-based  diagno- 
sis. In  order  to  make  difference  of  components  and  constraints,  we 
will  use  capital  letters  for  components,  and  small  letters  for  con- 
straints in  their  models,  and  aj  denote  the  models  of  multipliers 
and  adders,  respectively.  Each  model  is  made  up  of  just  one  con- 
straint; for  instance,  m i = {A,  C,  X}.  Whenever  a model  has  more 
than  one  constraint,  indices  are  used  to  distinguish  them.  The  related 
hyper-graph  is 

Hpolybox  = {{A,  B,  C,  D,  E , F,  G,  X,  Y,  Z},  {mi,  m2,  m3,  ai,  a2}} 


Ml 


Figure  1.  Classical  polybox  example  in  the  consistency-based  diagnosis. 
Observed  values  are  in  brackets.  {X,  Y,  Z } are  non-observed  values. 

Since  we  are  interested  in  minimal  conflicts,  only  minimal  evalu- 
ation chains,  MEC  for  short,  are  useful. 

Minima]  Evaluation  Chain  : Hec  is  a minimal  evaluation  chain  if 
there  is  no  evaluation  chain  H'ec  C Hec- 

The  set  of  minimal  Evaluation  chains,  SMEC,  is  built  based  on 
the  algorithms:  build-every-mec() , build-mec(),  and  justify()  which 
perform  depth-first  search  in  Hs d using  backtracking.  All  these  al- 
gorithms can  be  found  in  Appendix  B.  In  the  polybox  example,  these 


algorithms  have  found  three  MECs: 

Heci  = {{A,B,C,D,F,X,Y},{m1,m2,a1}} 

H£c.2  = {{B,C,D,E,G,Y,Z},{m2,m3, 02}} 

HeC3  = {{A,C,E,F,G,X,Y,Z},{m1,a1,a2,m3}} 

2.2  Can  an  evaluation  chain  be  solved? 

A minimal  conflict  is  a strictly  over-determined  system  that  we  want 
to  solve  using  local  propagation  alone.  However,  the  hyper-graph  has 
not  enough  information  about  how  each  constraint  can  be  solved.  To 
tackle  this  problem,  we  create  an  AND-OR  graph  for  each  minimal 
evaluation  chain.  In  such  a graph,  there  is  one  or  more  AND-OR 
arcs  for  each  hyper-arc  in  the  MEC.  Each  AND-OR  arc  represents 
one  way  the  hyper-arc  could  be  solved.  In  fact,  to  solve  a MEC,  we 
should  select  one  AND-OR  arc  from  each  constraint.  As  a conse- 
quence, choosing  different  AND-OR  arcs  from  the  AND-OR  graph 
generates  different  ways  of  solving  the  MEC.  Moreover,  the  over- 
determined system  can  only  be  solved  using  local  propagation  cri- 
teria. Each  one  of  the  different  ways  of  solving  a MEC  is  called  a 
Minimal  Evaluation  Model,  or  MEM. 

For  instance,  each  constraint  ( vm  or  ai)  used  to  model  the  poly- 
box system  provides  three  different  interpretations  to  the  AND-OR 
graph: 

f = v0ut  — Vim  ^ Vin2 

mi  {v0ut  , Vini  ’ Vim  ) ^ i 777j2  = Vim  = 'Vout/'Vinz'  if  Vin  2 ^0 
l mi 3 = Vin2  = Vouf/vjni5  if  Vini  0 

Interpretations  for  a constraint  arc  usually  obtained  when  applying 
the  invertibility  criterion.  Nevertheless,  there  are  additional  criteria. 
Appendix  D shows  constraints  used  to  model  a physical  system  made 
up  of  tanks,  pumps  and  valves.  Constraints  trl3,t23,  tr2r,  are  used 
to  compute  the  mass  in  a tank.  In  such  kind  of  constraint,  just  one  in- 
terpretation is  allowed,  since  we  have  taken  an  integration  approach: 

mr(f)  = J m'T(t  — 1 )dt  + m,T(t  — 1) 

This  interpretation  can  not  be  reversed.  Hence,  additional  concepts 
are  necessary  to  define  a Minimal  Evaluation  Model. 

Given  the  relation  between  nrr.  £ Rec.,  and  the  set  of  AND-OR 
arcs  nk  , derived  from  nec,we  can  state  the  following  proposition. 

Proposition  1 Let  AOG(Hec)  = {Vem,Rem}  be  the  AND-OR 
graph  obtained  from  Hec  = {Vec,  Rec}  applying  the  local  reso- 
lution criterion,  where: 

• v em  ~ F ect 

• Vrjet.  £ -Rec  =4-  3 rifc<sm  £ R em ) k > 1 
Then.  ricc  £ Rec  induces  a partition  in  Rem. 

Proof:  Each  nec  £ Rec.  induces  an  equivalence  class  in  Rem- 

By  definition,  it  induces  a partition  too. 

Leaf  node:  v%  is  a leaf  node  in  graph  H iff  E^.1  = 0. 

Discrepancy  node:  u,  is  a discrepancy  node  in  graph  II  iff 

• (dj,{vi)  > 2 A Vi  £ NOBS),  or 

• (dj}(vi)  > 1 A Vi  £ OBS) 

That  is,  a leaf  node  has  no  predecessors,  and  a discrepancy  node 
can  be  found  in  two  different  ways:  estimating  an  observed  variable, 
or  doing  a double  estimation  for  an  unknown  variable. 

Minimal  Evaluation  Model:  A partial  AND-OR  graph,  Hmem  C 

AOG(HeC),  where  Hmem  = {Vmem,Rmem}.  is  a minimal 

Evaluation  model  iff: 

1.  Rmem  is  a minimal  hitting-set  for  the  partition  induced  by 

T jec  £ Rec  in  Re m. 


2.  (Vvj  | Vi  £ Vrnem  and  Vi  is  a leaf  node)  =>•  vx  £ OBS. 

3.  3i Xj  £ Vmem  | Xj  is  a discrepancy  node, 

4.  if  Xj  is  a discrepancy  node,  then  there  exists  a directed  and 
acyclic  path  in  Hmem  : {xi,Xi+i, . . . ,Xi+k,Xj}  from  each 
node  x t to  xj. 

Algorithms  used  to  calculate  every  MEM  for  each  MEC:  build- 
every-memO,  and  build-mem(),  are  given  in  Appendix  C.  These  al- 
gorithms are  exhaustive  too,  since  they  perform  depth-first  search 
using  backtracking.  For  instance,  MEC  HeCl  has  a related  AND-OR 
graph: 

AOG(Heci)  = {{A,  B,  C,  D,  F.  X,  Y}, 

{mi1,mi2,TOi3,TO21,m22,m23,ai1,ai2,ai3}} 

Given  Ffeci  and  the  set  of  available  interpretations  in 
AOG(Heci),  algorithm  build-mem()  is  able  to  find  seven  different 
MEMs4: 

MEMs  Equivalent  to  evaluate  the  expression 

{rTllj  , t7l2y  , Ulj  } Robs  — Rpred  = A X C -{-  B X D 

{ttlq  , 7712 ^ , a\‘2  } Xpredi  — A X C ^ Xpred2  — R R ^ 

{77II2 , 7772i  , &lo  } A0bs  = Apred  = ( R B X D)  j C , if  C f 0 

{77713,77721,^12}  G0i,s  = Cpred  = {R  B x D) f A , if  A f 0 

{t77i  1 , ?772i  , UI3  } 3 predi  ~ R ( A X C)  = Ypred2  ~ B X D 

{7771!  , 77722  , ai3  } Bobs  = Bpred  = (R  A X C)  j D , if  D f 0 

{777.1  j , 77723  > °i3 } Bobs  = Dpred  = (F  - Ax  C)/B,  if  B f 0 

It  should  be  noticed  that  a MEC  would  provide  no  MEM  if  the 
over-determined  system  can  not  be  solved  using  available  interpre- 
tations and  local  propagation.  In  [31]  the  reader  can  find  additional 
information  on  how  temporal  information  has  been  included  in  this 
framework  and  one  example  of  a MEC  which  can  not  provide  any 
MEM. 

Once  summarized  the  possible  conflict  concept,  next  section  stud- 
ies the  relationship  between  MECs,  and  MEMs,  which  are  computed 
off-line,  and  real  conflicts  computed  on-line. 

3 Conflicts  and  possible  conflicts 

If  evaluated,  a MEM  could  lead  to  discrepancy,  i.e.,  it  could  lead  to 
a conflict.  However,  the  set  of  MEM  is  computed  off-line,  without 
any  model  evaluation.  And  conflicts  would  appear  only  when  obser- 
vations are  introduced  and  the  evaluation  model  is  computed.  So,  we 
have  introduced  the  following  concept: 

Possible  conflict:  The  set  of  constraints  in  a Minimal  Evaluation 
Chain  giving  rise  to,  at  least,  one  Minimal  Evaluation  Model. 

For  example,  in  the  polybox  system  in  Figure  1,  there 
are  three  possible  conflicts:  {{rrii, TO2,  di},  {mi,  oi,  02,7773}, 
{7772,  TO3, 02}},  because  every  MEC  has,  at  least,  one  MEM. 

In  such  a case,  where  component  models  are  made  up  of  only 
one  relation,  the  set  of  possible  conflicts  is  equivalent  to  the  set  of 
minimal  conflicts  in  Reiter’s  terminology  computed  on-line  by  GDE, 
whatever  the  faults  and  whatever  the  set  of  available  observations. 

At  this  point  it  is  necessary  to  answer  the  following  question:  is 
the  set  of  possible  conflicts  equivalent  to  the  set  of  minimal  conflicts 
computed  on-line  by  GDE?  In  order  to  answer,  we  need  additional 
definitions: 

P{S):  is  the  set  of  subsets  in  S; 

4 Since  the  MEM  will  have  the  same  set  of  variables  as  MEC,  we  just  include 
the  set  of  interpretations. 


model  : COMPS  —*  P{Rsd )'•  m,odel(C)  identifies  the  family 
of  relations  modelling  C behavior; 
comp : Rsd  —*  COMPS',  n — > comp(r f)  = {C  | r,  G 
model  (C)}: 

comp(ri)  indicates  the  component  containing  relation  r<  in  its 
model. 

Proposition  2 Let  co  be  a minimal  conflict  found  by  GDE,  and  co  is 
related  to  a discrepancy  in  v G Vsd-'  there  is  a minimal  evaluation 
chain,  Hec  = {Vec,  Rec},  such  that: 
v G Vec  and  co  = (J  compfrf) 

Proof;  GDE  solves  a minimal  over-determined  system  to  find 
a minimal  conflict  related  to  v [19],  Since  build-every-mec() 
performs  exhaustive  search,  it  is  able  to  find  every  minimal 
over-determined  system  in  Hsd  ■ Hence,  it  will  find  that  over- 
determined system  too. 

Hence,  once  GDE  finds  a minimal  conflict,  build-every-mecQ  will 
find  a MEC  containing  the  same  set  of  constraints  which  were  used 
to  find  a conflict.  Those  constraints  belong  to  the  same  set  of  compo- 
nents. 

Proposition  3 Let  co  be  a minimal  conflict  found  by  GDE,  and  co  is 
related  to  a discrepancy  in  v G Vsd:  there  is  a minimal  evaluation 
model,  Hme  = {Vem,  Rem},  that  can  obtain  a discrepancy  in  v,  and 
v G Vem  and  co  = |Jr. ,eR  comp(n) 

Proof:  By  proposition  2,  there  is  a MEC  related  to  co,  such 
that: 

co  = |^J  comp(rf) 

T-i  €flec 

Moreover  build-every-mem()  performs  an  exhaustive  search 
too.  Therefore,  it  will  find  every  MEM  related  to  such  MEC, 
i.e.,  every  possible  way  the  MEC  can  be  solved.  Hence,  it  will 
find  the  over-determined  system  used  to  obtain  the  minimal 
conflict.  Also,  each  nk  G Rem  is  an  interpretation  for  some 
Ti  G R ec-  Hence: 

co  = M comp(ri) 

rikeR,..rn 

At  least  one  of  the  MEM  related  to  the  CEM  will  find  a discrep- 
ancy in  v,  in  the  same  way  the  GDE  does. 

Unfortunately,  the  number  of  MEMs  for  each  MEC  is  exponen- 
tial in  the  average  number  of  interpretations  for  each  hyper-arc  in  the 
MEC.  Due  to  practical  reasons  we  just  select  one  MEM  related  to  a 
MEC.  Based  on  that  MEM,  we  build  an  executable  model  which  is 
used  for  fault  detection.  In  [31]  the  reader  can  find  a detailed  descrip- 
tion of  how  possible  conflicts  can  be  used  to  perform  consistency- 
based  diagnosis  for  both  static  and  dynamic  systems. 

Nevertheless,  it  is  still  possible  to  claim  that  the  set  of  possible 
conflicts  is  theoretically  equivalent  to  the  set  of  conflicts  found  on- 
line by  means  of  GDE.  We  will  show  this  fact  in  next  two  proposi- 
tions. 

Proposition  4 If  Hec  is  a MEC,  Hem  is  one  of  its  MEMs  and  the 
evaluation  of  the  executable  model  associated  to  Hem  generates  a 
discrepancy  in  v G Vem.,  then  GDE  will  find  a discrepancy  in  v. 

Proof:  There  is  a discrepancy  in  v related  to  the  evaluation  of  a 
MEM.  The  MEM  is  an  strictly  over-determined  system.  More- 
over, GDE  finds  any  discrepancy  related  to  any  minimal  over- 
determined system.  Hence,  it  will  find  the  discrepancy  in  v too. 


This  proposition  always  holds.  Unfortunately,  the  converse  does 
not  hold  universally,  because  we  can  not  guarantee  for  an  arbitrary  set 
of  non-linear  constraints  that  every  MEM  for  a MEC  will  provide  the 
same  solution  for  a given  set  of  observations  [40].  This  assumption 
should  be  stated  in  the  following  way: 

Equivalence  assumption  : Every  MEM  in  a MEC  provides  the 
same  set  of  solutions  for  any  given  set  of  input  observations. 

Now,  it  is  possible  to  define  the  following  proposition: 

Proposition  5 If  GDE  finds  a minimal  conflict,  co,  related  to  a dis- 
crepancy in  v,  and  the  equivalence  assumption  holds  for  a Hec  con- 
taining v,  then  the  possible  conflict  related  to  Hec  will  be  confirmed 
as  a minimal  conflict. 

Proof:  The  proof  is  straightforward  based  on  propositions  2, 
and  3. 

4 Comparing  possible  conflicts,  conflicts,  and 
ARRs 

As  previously  mentioned,  there  is  an  on-going  research  interest  from 
the  DX  and  FDI  communities  in  comparing  their  approaches.  Re- 
cently, Cordier  et  al.  [8]  proposed  a common  framework  to  com- 
pare conflicts  and  ARRs  [34,  33],  In  that  trend,  we  compare  ARRs 
and  possible  conflicts  considering  the  way  they  are  computed.  After- 
wards, we  discuss  results  in  [8]  and  extract  some  conclusions. 

4.1  Possible  conflicts  and  ARRs 

The  set  of  ARRs  is  obtained  from  the  unique  canonical  decomposi- 
tion of  the  structural  description  of  the  system  into  under-determined, 
just-determined,  and  over-determined  sets  of  constraints.  The  canon- 
ical decomposition  is  based  on  finding  a complete  matching,  w.r.t. 
unknown  variables,  in  the  bipartite  graph  associated  to  the  structural 
description  of  the  system.  Combination  of  just-determined  systems 
together  with  redundant  relations  is  the  basis  for  an  Analytical  Re- 
dundancy Relation[34]. 

Each  complete  matching  can  be  considered  as  a causality  assign- 
ment, but  it  is  necessary  to  obtain  a causal  matching  for  the  over- 
determined system,  from  the  set  of  causal  matchings  satisfying  the 
invertibility  condition  [33].  Each  ARR  can  be  solved  and  used  for 
diagnosis  purposes  once  observed  values  are  introduced. 

It  should  be  noticed  that  all  the  steps,  except  the  solving  one,  could 
be  done  off-line.  Hence,  computing  ARRs  is  a compilation  technique 
in  FDI.  And,  it  seems  obvious  that  strong  similarities  do  exist  be- 
tween the  way  ARRs  and  possible  conflicts  are  computed. 

• Both  methods  search  for  over-determined  sub-systems.  Direct  or 
deduced  ARRs  can  be  used  to  estimate  a value  for  an  observed 
variable  in  the  system.  Moreover,  algorithms  used  for  computing 
MEC,  can  be  used  to  obtain  the  whole  set  of  over-detennined  sub- 
systems5. Hence,  the  algorithms  will  find  an  evaluation  chain  with 
the  same  set  of  constraints  as  of  the  ARR. 

• An  ARR  need  a causal  matching,  because  not  every  causality  as- 
signment can  be  done  in  the  complete  matching.  In  the  same  way, 
AND-OR  arcs  are  introduced  to  limit  the  ways  an  hyper-arc  can 
be  solved.  It  seems  obvious  that  one  of  the  evaluation  models  for 
an  evaluation  chain  will  be  equivalent  to  the  causal  matching  in 
the  ARR. 

J It  is  straightforward  to  modify  algorithm  Justify Q to  search  for  any  over- 
determined  system. 
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• The  set  of  evaluation  models  for  an  evaluation  chain  are  built 
based  on  local  propagation  criterion,  i.e.,  the  evaluation  model 
does  not  contain  any  cycle.  This  condition  has  been  imposed  in 
the  ARR  approach  too.  For  this  reason,  the  ARR  is  obtained  once 
graph  reduction,  by  means  of  loop  elimination,  has  been  done  in 
the  causal  graph  [33].  This  step  is  equivalent  to  loop  elimination 
in  the  possible  conflict  approach  [29], 

I lowever,  there  are  some  differences: 

• Staroswiecki  et  al.  [33]  assume  that  in  an  over-determined  sys- 
tem the  set  of  unknowns  can  be  computed  in  different  ways,  using 
constraints  and  known  values,  and  “deduced  redundancy  relations 
are  obtained  writing  that  all  these  results  have  to  be  the  same”. 
This  assumption  is  the  same  as  the  equivalence  assumption  in  the 
previous  section. 

As  mentioned  above,  that  assumption  is  never  done  in  GDE  while 
computing  minimal  conflicts,  because  the  assumption  does  not 
hold  universally  for  physical  systems  made  up  of  general  non- 
linear constraints  [40],  Therefore,  based  on  propositions  4 and 
5,  it  can  not  be  claimed  that  model-based  diagnosis  relying  upon 
ARRs  and  consistency-based  diagnosis  using  conflicts  will  pro- 
vide always  the  same  set  of  results.  Results  obtained  using  ARRs 
would  be  the  same  as  of  those  obtained  using  just  one  MEM  for 
each  MEC.  These  results  can  be  sub-optimal,  w.r.t.  the  number  of 
detected  conflicts,  unless  the  equivalence  assumption  holds. 

• Moreover,  build-every-mec()  provides  the  whole  set  of  minimal 
evaluation  chains,  because  we  look  for  minimal  conflicts.  This  is 
not  guaranteed  in  the  original  ARR  approach,  which  should  be 
revised  to  find  just  minimal  ARRs. 


4.2  Discussion 


Cordier  et  al.  [8]  defined  the  support  for  an  ARR  as  “the  set  of  com- 
ponents involved  in  the  ARR”.  This  term  was  also  called  “potential 
R-conflict”,  because  of  their  Proposition  4.1: 
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Figure  2.  Scheme  of  the  system  to  be  diagnosed.  Measured  variables  are 
flows  FT01  = /*,  FT02  = /*,  FT03  = f* , and  FT04  = /* j ; level  of 
tank  LT05  = R2,  and  the  value  of  the  control  action  on  valve  V2  = u2 

at  the  output  of  tank  TR2. 

Its  related  hyper-graph  can  be  described  as: 

H.s’d  = {Vsd,  Rsd}', 

VSd  = {OBS  U NOBS}; 

N OBS  = {f9,  fio,  /12,  /i4,  m'TRl , mTR 1 , hT , m’T2 , mT2 , 

h'T 2 j tri'j'R^ , m x r2  , hT r2  , AFp2 , z\.Fp3 , 1 P2 Tiii  j P\t2  > 

P'2t2  ' Pt-TR 2 ' Pt-T If 2 > tlconti  } 

Rsd  = {trh,trl2,trl3,trU,t2i,t22,t23,t24,t25,p2i,p22, 
p2,i , p3i , p32 , pSa ,v2i,  v22 , tr2 1 , tr 22 , tr 23 , tr 24 , t r25 , fr26 } 

The  meaning  for  each  equation  above  can  be  found  in  Appendix 
D.  We  have  used  common  equations  for  computing  mass  balances, 
overflows,  and  so  on.  Analyzing  the  system  we  have  found  three  pos- 
sible conflicts.  The  reader  should  notice  that  PC3  is  minimal  w.r.t. 
constraints,  but  not  minimal  w.r.t.  components. 


PC, 

Components 

{DTi,  AT 2,  tr  13,  frl4,  f2i,  t22,  t2s, 

t2i,t:2a,p21,p22,p2a} 

{tr21,tr23,p3i,p32,p33,v21,v22} 
{frli , tr 12, iris, tr 14, f2i, t22, t2s, 
f2s , p23 , fr24 , tr  25 , tr  26 , p3a , v2 1 } 

{TRuT2,P2\ 

{TR2,P3,V2} 
{TRi , T2 , P2 , TR2 , 
Pa,V2} 

“Let  OBS  be  a set  of  observations  for  a system  modeled  by 
SM  fresp.  SD).  There  is  an  identity  between  the  set  of  minimal 
R-conflicts  for  OBS  and  the  set  of  minimal  potential  R-conflicts 
associated  to  the  ARRs  which  are  not  satisfied  by  OBS.” 

As  stated  in  the  previous  section,  we  think  it  is  necessary  to  make 
three  explicit  assumptions  to  guarantee  that  such  a conclusion  holds 
universally: 

• the  equivalence  assumption  holds, 

• the  set  of  ARRs  is  built  based  on  minimality  criteria,  and 

• we  have  a component-oriented  behavior  description  of  the  system, 
but  minimality  is  considered  w.r.t.  sets  of  constraints. 

Regarding  first  two  conditions,  it  seems  obvious  that  proposition 

5 in  Section  3 is  equivalent  to  proposition  4.1.  in  [8]  when  both  as- 
sumptions hold.  Third  assumption  must  be  taken  into  account  when 
behavioral  models  are  made  up  of  more  than  one  constraint.  Mini- 
mality w.r.t.  sets  of  constraints  is  needed  because  not  every  possible 
conflict  is  equivalent  to  a minimal  conflict  in  Reiter’s  framework.  We 
will  illustrate  this  using  the  system  in  Figure  2.  The  system  is  made 
up  of  common  components  in  process  industry  such  as  tanks,  p umps, 
valves,  and  so  on. 


5 Conclusions 

In  this  paper  we  have  shown  that  compilation  of  dependencies  by 
means  of  the  possible  conflict  approach  is  theoretically  equivalent  to 
on-line  dependency  recording  in  GDE.  However,  it  is  not  possible 
to  claim  that,  in  practice,  consistency-based  diagnosis  using  possible 
conflicts  provides  the  same  results  as  GDE  does,  unless  the  equiva- 
lence assumption  holds. 

We  have  found  out  that  the  model  of  an  ARR  is  equivalent  to  some 
evaluation  model  for  an  evaluation  chain.  Since  we  select  just  one 
MEM  for  each  MEC  for  practical  reasons,  we  conclude  that  both 
approaches  can  obtain  equivalent  results  (assuming  ARRs  are  com- 
puted based  on  minimality  criteria). 

Finally,  we  have  concluded  that  Proposition  4.1  in  [8]  need  to  be 
revised  taking  into  account  results  in  propositions  4 and  5,  and  con- 
sidering minimality  criteria  w.r.t.  constraints. 
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A Graph  and  hyper-graph  notation 

H = [V,  E\  Hyper-graph  H,  made  up  V : nodes,  and 

E:  a family  of  sub-sets  in  V 
F i Successors  for  node  i 

F”1  Predecessors  for  node  i 

dn  ( i ) Degree  for  node  i in  H 

dfj(i),  djj  (i)  Output  and  input  demi-degree  for  node  i in  H 

Bipartite  graph:  G = [V,  E\  is  a bipartite  graph  if  there  are  two 
disjoints  parts  in  V = S U T,  and  edges  in  E are  always  directed 
from  S to  T. 

Matching:  A matching  M in  G = [V,  E\  is  a subset  of  E such  that 
no  two  arcs  in  M share  a common  vertex  incident  to  them. 

B Algorithms  for  computing  the  set  of  minimal 
evaluation  chains 

Algorithm  build-every-mec  (SMEC)  is 

SMEC:  set  of  MEC;  { Each  MEC  is  a set  of  constraints} 
available,  to-be-justified,  justified,  chain:  set  of  constraints; 

R,  R2:  constraint; 

Begin 

available  :=  Constraints-in( Hs d ) ; 
while  available  f 0 do 
R :=  Select-constraint(available); 
chain  :=  0; 

available  :=  available  \ {R}; 
build-mec  (SMEC,  chain,  R,  available); 
end  while 
End 

Algorithm  build-mec  (SCEM,  chain,  R,  available)  is 
Begin 

Insert  R in  chain; 
to-be-justified  :=  R.nobs; 
justified  :=  0; 

Justify  (SMEC,  chain,  to-be-justified,  justified,  available); 

End 

Algorithm  Justify  (SMEC,  chain,  to-be-justified,  justified,  avail- 
able) is 

v:  unknown  variable; 
related:  set  of  constraints; 

Begin 

if  to-be-justified  = 0 then 
if  there  is  no  subset  of  chain  in  SMEC  then 
Erase  chain  supersets  from  SMEC; 

Insert  chain  in  SMEC; 

end  if  { Only  minimal  chains  are  included  in  SMEC.} 

else 

v :=  select-variable  (to-be-justified); 
related  :=  R | R € available  and  v G R.nobs; 
while  related  f 0 do 
R1  :=  select-r  (related); 
related  :=  related  \ (R1 }; 
chain2  :=  chain  U {HI}; 

Justified2  :=  Justified  U{v}; 

to-be-justified2  :=  (to-be-justified  \ v)  U (Rl.nobs  \ justificd2  }; 
available2  :=  available  \ Rl; 

Justify  (SMEC,  chain2,  to-be-justified2,  justified2,  available2); 

end  while 
end  if 
End 


C Algorithms  for  computing  the  set  of  minimal 
evaluation  models 

Algorithm  build-every-mem  (SMEC,  SMEM)  is 
Begin 

for  chain  = each  MEC  in  SMEC  do 
for  R = each  constraint  in  chain  do 
for  I = each  interpretation  for  R do 
model  :=  {!}; 
to-be-justified:=  I. nobs; 
justified  :=  0; 
chain  :=  chain  \ {/?}; 

build-mem  (model,  chain,  to-be-justified,  justified,  SMEM); 
end  for 
end  for 
end  f oi- 
End 

Algorithm  build-mem  (model,  available,  to-be-justified,  justified, 
SMEM)  is 
Begin 

if  to-be-justified  = 0 and  available  = 0 and  3i  discrepancy  node  in 
model  then 

Insert  model  in  SMEM; 
end  if 
else 

for  S = each  constraint  in  available  do 
j/S.nobs  fi  to-be-justified  = 0 then 
for  12  = each  interpretation  for  S do 
//head(I2)  Cl  to-be-justified  f-  0 then 
Insert  {12}  in  model; 
available  :=  available  \ {S}; 

to-be-justified  :=  (to-be-justified  \ hcad(I2))  U tail(I2).nobs; 
Insert  hcad(I2)  in  justified; 

Build-mem  (model,  available,  to-be-justified,  justified,  SMEM); 
end  if 
end  for 
end  if 
end  for 
end  if 
End  ' 

D Constraints  used  to  model  the  hydraulic  system 


Constraints 

trli , t,2x,tr2i 

Represent 

Mass  balance  in  T : m'T  = fin  — font, 

frl2,f22 

Overflow  in  T:  fout  = y/k  ■ (Iit  — he.xt) 

trl3,t23,tr23 

Mass:  mx(t)  = J m'T(t  — l)dt  + mx{t  — 1) 

trli,  t25,  tr2a 

Height  in  T:  : hx  = fci  ■ 

t.2i,  tr22 

Pressure  at  bottom:  Pt,  = fc2  • hx  + Patm 

p2up32 

Pump  load  curve  in  P:  A Pp  = tablePQ(fout) 

p22,p3i 

n ^ ■ t-  , /,  (Pt,  +APp— P2) 

Outflow  m T:  fout  = U k3  ■ ki 

p23,p33,v23 

Flow  out  of  tank:  fin  = fout 

t,r2\ 

Control:  u = PID(hx) 

v22 

Flow  through  a valve:  fout  = \J k3  ■ ( 

